Vulnerabilities > Unrestricted Upload of File with Dangerous Type
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-20 | CVE-2020-27461 | Unrestricted Upload of File with Dangerous Type vulnerability in Seopanel 4.6.0 A remote code execution vulnerability in SEOPanel 4.6.0 has been fixed for 4.7.0. | 8.8 |
| 2021-08-20 | CVE-2020-18879 | Unrestricted Upload of File with Dangerous Type vulnerability in Bludit 3.8.1 Unrestricted File Upload in Bludit v3.8.1 allows remote attackers to execute arbitrary code by uploading malicious files via the component 'bl-kereln/ajax/upload-logo.php'. | 9.8 |
| 2021-08-20 | CVE-2020-18886 | Unrestricted Upload of File with Dangerous Type vulnerability in PHPmywind 5.6 Unrestricted File Upload in PHPMyWind v5.6 allows remote attackers to execute arbitrary code via the component 'admin/upload_file_do.php'. | 7.2 |
| 2021-08-18 | CVE-2021-37608 | Unrestricted Upload of File with Dangerous Type vulnerability in Apache Ofbiz Unrestricted Upload of File with Dangerous Type vulnerability in Apache OFBiz allows an attacker to execute remote commands. | 9.8 |
| 2021-08-16 | CVE-2021-22937 | Unrestricted Upload of File with Dangerous Type vulnerability in multiple products A vulnerability in Pulse Connect Secure before 9.1R12 could allow an authenticated administrator to perform a file write via a maliciously crafted archive uploaded in the administrator web interface. | 7.2 |
| 2021-08-16 | CVE-2020-18704 | Unrestricted Upload of File with Dangerous Type vulnerability in Fusionbox Widgy 0.8.4 Unrestricted Upload of File with Dangerous Type in Django-Widgy v0.8.4 allows remote attackers to execute arbitrary code via the 'image' widget in the component 'Change Widgy Page'. | 9.8 |
| 2021-08-16 | CVE-2021-38753 | Unrestricted Upload of File with Dangerous Type vulnerability in Simple Image Gallery web APP Project Simple Image Gallery web APP An unrestricted file upload on Simple Image Gallery Web App can be exploited to upload a web shell and executed to gain unauthorized access to the server hosting the web app. | 9.8 |
| 2021-08-12 | CVE-2021-29377 | Unrestricted Upload of File with Dangerous Type vulnerability in Pearadmin Think 2.0.0/2.1.0/2.1.2 Pear Admin Think through 2.1.2 has an arbitrary file upload vulnerability that allows attackers to execute arbitrary code remotely. | 9.8 |
| 2021-08-12 | CVE-2021-38366 | Unrestricted Upload of File with Dangerous Type vulnerability in Sitecore Sitecore through 10.1, when Update Center is enabled, allows remote authenticated users to upload arbitrary files and achieve remote code execution by visiting an uploaded .aspx file at an admin/Packages URL. | 8.8 |
| 2021-08-12 | CVE-2020-18462 | Unrestricted Upload of File with Dangerous Type vulnerability in Aikcms 2.0 File Upload vulnerabilty in AikCms v2.0.0 in poster_edit.php because the background file management office does not verify the uploaded file. | 7.2 |